On Thu, 2002-06-13 at 16:50, Jon Gaudette wrote: This is great and all for in this case, when you forget your password, but what about the security implications of this? Can't just "any ol' user" do this and gain root privledges?
Yep. Physical security of a machine is important. You can help a little by setting a pasword in lilo (and I assume grub) for booting into singlemode. Of course there is also the ability to boot from floppy and/or cdrom that will allow a user to do anything they want. You can of course password protect most modern bioses and set the bios so that it will not boot from anything other than what you want it to, but then if a person has enough time with the box they could always swap thier own harddrive putting the primary drive into a secondary postion and mount the drive and do what they will. Now you know why white floor rooms have locks on them even in buildings where it would be difficult to carry out a machine. I remember a couple of years ago when it dawned on me how easy this was and I sort of freaked too? I have sence paid a lot more attention to the physical security of machines on my network. Bret _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
